Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
File: Otu0daQwTIRTQ_2U_ummuIAI44s.mft (raw, json)
Hash identifier: A+XqfDQ0K3ue72rCiASWmCqOkbLfwGNmvpTfYayzDiM=
Subject key identifier: C9:33:6B:B3:BB:0F:E5:26:93:F7:EC:37:8D:15:56:A0:BC:94:1F:B2
Authority key identifier: 3A:DB:B4:75:A4:30:4C:84:53:43:FD:94:FE:E9:A6:B8:80:08:E3:8B
Certificate issuer: /CN=3adbb475a4304c845343fd94fee9a6b88008e38b
Certificate serial: 019A71133EA1B54E59F5F26163BF92B04860
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
Manifest number: E5
Signing time: Tue 11 Nov 2025 04:01:17 +0000
Manifest this update: Tue 11 Nov 2025 04:01:17 +0000
Manifest next update: Wed 12 Nov 2025 04:01:17 +0000
Files and hashes: 1: DVUSZ4Wn0WYyKumEhUgsl46ROFc.roa (hash: XFlMm/wUVW8+vc0BV0GxtZswisL8d+xkAL7tq7JpJlQ=)
2: Otu0daQwTIRTQ_2U_ummuIAI44s.crl (hash: N8IEGisrcwymyqoPa5IqYF3DQ4NqAlSDRYaGuWapdWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:3e:a1:b5:4e:59:f5:f2:61:63:bf:92:b0:48:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adbb475a4304c845343fd94fee9a6b88008e38b
Validity
Not Before: Nov 11 04:01:17 2025 GMT
Not After : Nov 12 04:01:17 2025 GMT
Subject: CN=c9336bb3bb0fe52693f7ec378d1556a0bc941fb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d8:f2:c2:b4:b9:1a:a4:bf:9f:d7:2f:a4:40:
81:d4:04:1b:4c:ad:f2:01:47:fc:1f:62:7f:14:17:
61:47:21:71:8c:e3:31:ff:5e:f4:36:f5:d6:39:e7:
9b:ee:2f:bf:30:9c:e4:4c:fc:9b:1c:cc:c2:f2:d1:
0b:9f:b9:9f:f8:99:7c:53:d7:4b:ac:49:53:c3:1b:
57:66:3c:91:9a:3b:01:63:fb:09:12:b0:db:7b:7a:
6c:6a:03:71:a9:68:14:b1:f8:50:ca:0c:e5:0b:c7:
4f:a5:1b:86:ee:ec:25:ae:73:81:53:e4:fd:79:5c:
ee:f8:ab:ff:d3:3f:a1:5c:25:1d:69:e1:9d:9d:0c:
87:14:24:db:c7:6d:07:72:3d:1f:53:79:7c:12:c1:
73:9e:f4:93:fe:15:40:b2:c3:36:da:2f:96:4f:d6:
92:f9:1b:9b:bd:3a:6b:24:58:7c:3f:d3:b0:f5:e0:
f4:ea:76:52:d7:3a:17:b4:da:1b:c0:65:77:f0:3a:
8f:2b:5a:fc:39:68:c9:43:06:3e:d2:47:6a:b4:4a:
ff:8e:12:8c:02:10:e6:f9:d1:0e:33:39:29:2f:64:
3f:a4:07:a9:ff:a3:22:0a:43:d5:19:f5:a4:16:8c:
fb:2d:1f:6d:fa:e7:b2:af:11:a7:e4:59:91:68:c2:
d2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:33:6B:B3:BB:0F:E5:26:93:F7:EC:37:8D:15:56:A0:BC:94:1F:B2
X509v3 Authority Key Identifier:
keyid:3A:DB:B4:75:A4:30:4C:84:53:43:FD:94:FE:E9:A6:B8:80:08:E3:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:c5:df:f1:dc:b1:24:fb:40:fb:2f:7c:02:54:0e:44:67:1d:
13:08:86:b6:07:bc:7d:86:58:9d:4e:60:6b:8d:29:bb:46:0f:
59:27:41:5a:b2:f7:e1:b4:77:0b:06:c3:66:2a:54:6d:7f:f1:
f0:f8:d4:14:7c:13:0b:71:8e:df:b6:40:ea:c5:33:5a:f2:4f:
48:ce:26:12:74:ab:5c:0f:a8:48:b6:5a:89:a3:a3:df:40:fe:
c5:fa:9b:6b:df:d5:92:ff:a9:28:a8:bb:c1:4a:6d:b3:c9:c8:
29:30:2b:90:fe:fd:0e:34:c0:27:30:8d:ae:2b:08:e1:d3:2f:
cd:7e:14:cd:f8:b3:da:bd:78:c4:99:fc:4a:6a:ca:e8:2e:a3:
5c:f3:24:3b:ad:58:1c:95:1b:a6:a1:46:00:a2:78:84:12:8e:
90:3e:8d:1b:15:df:08:ec:ea:9f:5a:a4:cb:77:7d:e0:9e:48:
35:bd:6f:58:d2:19:bd:ec:34:bd:f4:fa:a9:a5:2a:74:91:b5:
03:18:ba:ab:38:b9:95:15:3c:df:70:1e:04:c5:5e:e9:e6:b3:
9d:f0:8d:a7:f8:24:4e:8c:49:61:24:1b:84:8c:8a:44:d8:7b:
e5:bc:8b:7f:91:1b:b4:3b:e1:30:2d:0a:4d:c3:39:a5:5b:74:
71:59:11:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxEz6htU5Z9fJhY7+SsEhgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZGJiNDc1YTQzMDRjODQ1MzQzZmQ5NGZlZTlhNmI4ODAw
OGUzOGIwHhcNMjUxMTExMDQwMTE3WhcNMjUxMTEyMDQwMTE3WjAzMTEwLwYDVQQD
EyhjOTMzNmJiM2JiMGZlNTI2OTNmN2VjMzc4ZDE1NTZhMGJjOTQxZmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntjywrS5GqS/n9cvpECB1AQbTK3y
AUf8H2J/FBdhRyFxjOMx/170NvXWOeeb7i+/MJzkTPybHMzC8tELn7mf+Jl8U9dL
rElTwxtXZjyRmjsBY/sJErDbe3psagNxqWgUsfhQygzlC8dPpRuG7uwlrnOBU+T9
eVzu+Kv/0z+hXCUdaeGdnQyHFCTbx20Hcj0fU3l8EsFznvST/hVAssM22i+WT9aS
+RubvTprJFh8P9Ow9eD06nZS1zoXtNobwGV38DqPK1r8OWjJQwY+0kdqtEr/jhKM
AhDm+dEOMzkpL2Q/pAep/6MiCkPVGfWkFoz7LR9t+ueyrxGn5FmRaMLSnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMkza7O7D+Umk/fsN40VVqC8lB+yMB8GA1UdIwQY
MBaAFDrbtHWkMEyEU0P9lP7ppriACOOLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3R1MGRhUXdUSVJUUV8yVV91bW11SUFJNDRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yMjY5MjctZDY1Ni00YjkxLWE5OTAt
MGNlMDQ5NmE5OTdiLzEvT3R1MGRhUXdUSVJUUV8yVV91bW11SUFJNDRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8yMjY5MjctZDY1Ni00YjkxLWE5OTAtMGNlMDQ5NmE5OTdi
LzEvT3R1MGRhUXdUSVJUUV8yVV91bW11SUFJNDRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcsXf8dyx
JPtA+y98AlQORGcdEwiGtge8fYZYnU5ga40pu0YPWSdBWrL34bR3CwbDZipUbX/x
8PjUFHwTC3GO37ZA6sUzWvJPSM4mEnSrXA+oSLZaiaOj30D+xfqba9/Vkv+pKKi7
wUpts8nIKTArkP79DjTAJzCNrisI4dMvzX4Uzfiz2r14xJn8SmrK6C6jXPMkO61Y
HJUbpqFGAKJ4hBKOkD6NGxXfCOzqn1qky3d94J5INb1vWNIZvew0vfT6qaUqdJG1
Axi6qzi5lRU833AeBMVe6eaznfCNp/gkToxJYSQbhIyKRNh75byLf5EbtDvhMC0K
TcM5pVt0cVkRVg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:59:39 2025 by rpki-client